Lucene search

RubyGems Escape sequence injection vulnerability in gem owner

🗓️ 20 Jun 2019 16:00:06Reported by GitHub Advisory DatabaseType

RubyGems escape sequence injection vulnerability in gem owner comman

Reporter	Title	Published	Views	Family All 94
Prion	Design/Logic Flaw	17 Jun 201920:15	–	prion
NVD	CVE-2019-8322	17 Jun 201920:15	–	nvd
OSV	CVE-2019-8322	17 Jun 201920:15	–	osv
OSV	RubyGems Escape sequence injection vulnerability in gem owner	20 Jun 201916:06	–	osv
OSV	ruby2.1 - security update	29 Mar 201900:00	–	osv
OSV	ruby:2.5 bug fix and enhancement update	5 Nov 201917:38	–	osv
OSV	RHSA-2019:1235 Red Hat Security Advisory: ruby security update	13 Sep 202421:59	–	osv
OSV	RHBA-2019:3384 Red Hat Bug Fix Advisory: ruby:2.5 bug fix and enhancement update	13 Sep 202421:59	–	osv
OSV	RHSA-2019:1150 Red Hat Security Advisory: rh-ruby24-ruby security, bug fix, and enhancement update	13 Sep 202421:59	–	osv
OSV	RHSA-2019:1429 Red Hat Security Advisory: CloudForms 4.7.5 security, bug fix and enhancement update	13 Sep 202421:59	–	osv

Vulners

Node

rubygems\-updateRange3.0.0–3.0.2

rubygems\-updateRange2.6.0–2.7.9

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-8322
lists	www.lists.debian.org/debian-lts-announce/2020/08/msg00027.html
lists	www.lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
hackerone	www.hackerone.com/reports/315087
blog	www.blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
github	www.github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8322.yml
github	www.github.com/advisories/GHSA-mh37-8c3g-3fgc

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Jun 2019 16:06Current

8.4High risk

Vulners AI Score8.4

CVSS25

CVSS37.5

EPSS0.00262

CWE-74